Set Local Policy to be the ZyWALL/USG local IP address that can use the VPN tunnel and set Remote Policy to the peer ZyWALL/USG local IP address that can use the VPN tunnel. Quick Setup VPN Setup Wizard Wizard Type VPN Settings (Configuration) 5. This screen provides a read-only summary of the VPN tunnel.
![Local Local](http://www.zyxel.se/upload/images_local/support/security/usg20/91-009-072001B_525_003.png)
NAT Traversal
My ZyWALLidentifies the WAN IP tackle or domain title of thé ZyWALL (if it offers one) or depart the industry arranged to 0.0.0.0. The ZyWALL has to reconstruct the VPN canal if théMy ZyWALLlP tackle modifications after set up.
ThéRemote control Entrance IP Tacklemay be configured as 0.0.0.0 just when usingIKEessential administration and notGuideessential management.
![Zyxel Zyxel](/uploads/1/2/4/6/124692604/486027372.png)
Find the right after desk.
TELECOMMUTER
(dynamic IP tackle assigned by the lSP)
With this IP tackle just the telecommuter can initiate the IPSec canal.
ID Type and Articles
With intense negotiation mode, the ZyWALL recognizes incoming SAs by ID type and content material since this identifying information will be not encrypted. This allows the ZyWALL to distinguish between several guidelines for SAs that link from remote IPSec routers that possess powerful WAN IP details. Telecommuters can use separate security passwords to concurrently link to thé ZyWALL from lPSec routers with dynamic IP handles.Regardless of the Identity kind and articles settings, the ZyWALL does not allow you to conserve multiple active rules with overlapping local and remote control IP address.With major setting, the Identification type and content are usually encrypted to supply identity protection. In this situation the ZyWALL can just differentiate between up to 12 various inbound SAs that link from remote control IPSec routers that have got powerful WAN IP tackles. The ZyWALL can differentiate up to 12 inbound SAs because you can select between three éncryption algorithms (DES, 3DHa sido and AES), twó authentication aIgorithms (MD5 ánd SHA1) and twó important organizations (DH1 ánd DH2) when yóu configure á VPN guideline. The ID type and content material action as an additional degree of identity for incóming SAs.The type of ID can become a domains name, an IP tackle or an e-mail tackle. The articles is the IP address, domain title, or e-mail deal with.Local ID Type and Content AreasLocal ID typeContent materialIP
Type the IP address of your pc or leave the field blank to have the ZyWALL automatically use its personal IP deal with.DNS
Type a domains name (up to 31 heroes) by which to identify this ZyWALL.EmailKind an email deal with (up to 31 personas) by which to recognize this ZyWALL.The domains title or e-mail deal with that you use in theContent materialfield is utilized for id purposes only and does not require to be a actual domain name or e-mail deal with.Peer Identification Kind and Content material FieldsPeer ID kind | Content |
IP | Kind the IP address of the computer with which you will make the VPN connection or keep the field blank to have got the ZyWALL immediately use the tackle in theRemote GatewayDeal withindustry. |
DNS | Type a domains name (up to 31 heroes) by which to identify the remote control IPSec router. |
Type an email deal with (up to 31 character types) by which to determine the remote IPSec router. | |
Subject Name | Type the subject matter name (up to 255 figures) by which to recognize the remote IPSec router. This option is available just when you fixedAuthentication EssentialtóCértificate. |
The site name or email address that you make use of in theContentindustry is used for identity purposes just and does not require to be a real domain title or e-mail address. The domain name name also does not have got to go with the remote control router'beds IP tackle or what yóu configure in théRemote Gateway Addressfield below. |
ZyWALL A
ZyWALL MNearby ID type: EmailRegional ID kind: IPRegional ID articles: [email protected]Nearby ID articles: 1.1.1.2
Peer Identification kind: IPPeer Identity kind: E-mailPeer Identity content: 1.1.1.2
Peer Identity content: [email protected]Nearby ID content: 1.1.1.10
Regional ID content material: 1.1.1.10
Peer Identity kind: E-mailPeer ID type: IPPeer Identity content material: [email protected]Peer Identification content: D/A